$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 4gFT16ObpjMrOqKHcypr09wXK36vv/YjNL8yctCcd3U= Subject key identifier: 23:B7:41:5E:0D:ED:B2:65:6B:D8:80:61:43:3F:C8:15:AD:5E:96:EA Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 718FC66923D64BDF39F6D65B21E00E0FC9622D94 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa Signing time: Thu 10 Jul 2025 10:00:00 +0000 ROA not before: Thu 10 Jul 2025 09:55:00 +0000 ROA not after: Thu 09 Jul 2026 10:00:00 +0000 asID: 9794 IP address blocks: 203.201.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 03:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:8f:c6:69:23:d6:4b:df:39:f6:d6:5b:21:e0:0e:0f:c9:62:2d:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 10 09:55:00 2025 GMT Not After : Jul 9 10:00:00 2026 GMT Subject: CN=23B7415E0DEDB2656BD88061433FC815AD5E96EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:19:e8:7f:69:37:4b:af:90:89:d7:fe:31:42: 73:cb:85:87:91:ce:d9:48:b8:f3:62:c5:a6:65:f4: a9:d1:ab:30:f0:e9:e8:11:1d:f3:f8:6b:be:3b:1d: 8d:74:d5:c9:cc:c8:67:b7:d2:e0:51:7e:b3:31:2b: 0e:81:5b:2d:34:42:a1:32:00:01:43:1e:c1:96:71: 39:20:53:40:aa:fc:8e:41:7d:14:86:8b:2b:3d:4a: 94:0c:4c:eb:d4:f1:78:87:9d:41:39:23:7a:42:96: 0c:8c:56:df:32:22:e1:39:fc:bf:63:73:a7:c2:fc: 11:43:76:c7:f6:18:fb:85:91:39:3f:1b:f2:c9:62: 70:7c:0c:03:4e:76:9f:30:3e:f0:be:ce:87:84:e7: 95:98:4e:0d:05:91:5e:85:3b:08:58:30:a2:0c:d9: 79:1f:b2:21:1a:13:95:78:b2:1c:18:86:c8:17:99: e5:27:b3:9c:b5:10:1e:76:07:71:6e:0e:29:73:28: 39:ab:bf:e1:bc:ef:43:ec:e6:fe:cd:53:ce:8c:28: 63:bd:29:96:a2:07:5e:70:0e:fe:b4:9f:c0:97:c9: 08:44:c2:01:b9:e3:54:65:aa:ed:b6:00:c2:d4:13: 54:e8:5c:a6:ff:89:10:cc:b3:2d:ff:dd:eb:e4:ed: de:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B7:41:5E:0D:ED:B2:65:6B:D8:80:61:43:3F:C8:15:AD:5E:96:EA X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.168.0/24 Signature Algorithm: sha256WithRSAEncryption 57:72:18:8e:24:be:b3:13:93:1f:0c:20:4c:4f:4b:35:6c:b2: 72:68:8f:f1:60:b8:82:bb:dc:23:93:82:bd:49:d4:bc:94:7a: 24:08:19:eb:a2:16:8c:38:b8:4e:81:23:64:46:a4:7f:91:7f: 89:16:cc:3b:c9:3b:d0:4e:95:cf:bd:41:d2:f6:b7:a0:94:0e: ba:05:12:19:ce:35:4d:08:7d:2b:5b:4a:43:2c:13:f4:d1:29: c9:84:9a:18:f5:8c:60:7a:30:8a:03:ca:cc:f4:4f:39:8d:81: bf:d3:bd:b7:bc:0e:0c:c7:1d:16:6f:be:58:13:98:48:df:ce: 4b:82:78:e4:c4:b1:7e:5b:eb:fc:20:85:da:f9:55:91:40:a9: 51:7f:78:13:00:bb:58:bf:c9:cc:b3:1a:6d:19:f1:7e:e9:55: c6:9d:78:45:03:4d:46:71:bd:c4:cf:a0:20:68:33:85:15:1e: ed:65:da:a4:19:3d:9f:83:0b:cd:e5:3e:20:9f:41:08:ed:1f: 9f:92:2e:af:ee:75:4a:6f:9e:f0:35:eb:be:aa:a5:78:f6:d3: 44:60:de:c8:57:c9:5c:77:b3:8c:9e:8c:4c:11:d3:e7:4f:87: d5:1a:c9:68:12:d8:ac:90:cb:12:ca:e5:7a:1c:9b:04:01:bf: 2c:41:be:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcY/GaSPWS9859tZbIeAOD8liLZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA3MTAwOTU1MDBaFw0yNjA3MDkxMDAwMDBaMDMxMTAvBgNV BAMTKDIzQjc0MTVFMERFREIyNjU2QkQ4ODA2MTQzM0ZDODE1QUQ1RTk2RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxGeh/aTdLr5CJ1/4xQnPLhYeR ztlIuPNixaZl9KnRqzDw6egRHfP4a747HY101cnMyGe30uBRfrMxKw6BWy00QqEy AAFDHsGWcTkgU0Cq/I5BfRSGiys9SpQMTOvU8XiHnUE5I3pClgyMVt8yIuE5/L9j c6fC/BFDdsf2GPuFkTk/G/LJYnB8DANOdp8wPvC+zoeE55WYTg0FkV6FOwhYMKIM 2XkfsiEaE5V4shwYhsgXmeUns5y1EB52B3FuDilzKDmrv+G870Ps5v7NU86MKGO9 KZaiB15wDv60n8CXyQhEwgG541Rlqu22AMLUE1ToXKb/iRDMsy3/3evk7d6ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUI7dBXg3tsmVr2IBhQz/IFa1eluowHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJqDANBgkqhkiG 9w0BAQsFAAOCAQEAV3IYjiS+sxOTHwwgTE9LNWyycmiP8WC4grvcI5OCvUnUvJR6 JAgZ66IWjDi4ToEjZEakf5F/iRbMO8k70E6Vz71B0va3oJQOugUSGc41TQh9K1tK QywT9NEpyYSaGPWMYHowigPKzPRPOY2Bv9O9t7wODMcdFm++WBOYSN/OS4J45MSx flvr/CCF2vlVkUCpUX94EwC7WL/JzLMabRnxfulVxp14RQNNRnG9xM+gIGgzhRUe 7WXapBk9n4MLzeU+IJ9BCO0fn5Iur+51Sm+e8DXrvqqlePbTRGDeyFfJXHezjJ6M TBHT50+H1RrJaBLYrJDLEsrlehybBAG/LEG+JA== -----END CERTIFICATE-----Generated at Tue Jul 22 04:19:06 2025 by rpki-client